203 matches found
The vulnerability of the visual analysis tool IBM i2 Analyst’s Notebook involves an operation that goes beyond the buffer limits in memory. This allows a malicious actor to trigger a service failure or execute arbitrary code.
The vulnerability of the visual analysis tool IBM i2 Analyst’s Notebook relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to trigger a service failure or execute arbitrary code using a specially created file with t...
What we like about Microsoft Defender for Endpoint
This blog post is part of the Microsoft Intelligent Security Association guest blog series. Learn more about MISA. It’s no secret that the security industry generally likes Microsoft Defender for Endpoint. After a few months of using and integrating it with our platform here at Expel, we feel the...
Making Sense of the Security Sensor Landscape
We have a serious sensor problem in the cybersecurity world. And it’s bad. Particularly when it comes to network intrusion detection and prevention sensors IDS/IPS. It seems like many security operations center SOC teams have completely given up on them being effective. But is the problem with...
Wsb-Detect - Tool To Detect If You Are Running In Windows Sandbox ("WSB")
wsb-detect enables you to detect if you are running in Windows Sandbox "WSB". The sandbox is used by Windows Defender for dynamic analysis, and commonly manually by security analysts and alike. At the tail end of 2019, Microsoft introduced a new feature named Windows Sandbox WSB for short. The...
IBM i2 Analysts Notebook Memory Corruption Vulnerability (CNVD-2020-60087)
IBM i2 Analysts Notebook is a data visualization and analysis tool from IBM USA. The product supports features such as data storage and data analysis. A memory corruption vulnerability exists in IBM i2 Analysts Notebook versions 9.2.0 and 9.2.1. An attacker can exploit this vulnerability by...
IBM i2 Analysts Notebook Memory Corruption Vulnerability (CNVD-2020-60085)
IBM i2 Analysts Notebook is a data visualization and analysis tool from IBM USA. The product supports features such as data storage and data analysis. A memory corruption vulnerability exists in IBM i2 Analysts Notebook versions 9.2.0 and 9.2.1. An attacker can exploit this vulnerability by...
IBM i2 Analysts Notebook Memory Corruption Vulnerability (CNVD-2020-60086)
IBM i2 Analysts Notebook is a data visualization and analysis tool from IBM USA. The product supports features such as data storage and data analysis. A memory corruption vulnerability exists in IBM i2 Analysts Notebook versions 9.2.0 and 9.2.1. An attacker can exploit this vulnerability by...
IBM i2 Analysts Notebook Memory Corruption Vulnerability
IBM i2 Analysts Notebook is a data visualization and analysis tool from IBM USA. The product supports features such as data storage and data analysis. A memory corruption vulnerability exists in IBM i2 Analysts Notebook versions 9.2.0 and 9.2.1. An attacker can exploit this vulnerability by...
Welcome to ThreatPursuit VM: A Threat Intelligence and Hunting Virtual Machine
Skilled adversaries can deceive detection and often employ new measures in their tradecraft. Keeping a stringent focus on the lifecycle and evolution of adversaries allows analysts to devise new detection mechanisms and response processes. Access to the appropriate tooling and resources is critic...
New Framework Released to Protect Machine Learning Systems From Adversarial Attacks
Microsoft, in collaboration with MITRE, IBM, NVIDIA, and Bosch, has released a new open framework that aims to help security analysts detect, respond to, and remediate adversarial attacks against machine learning ML systems. Called the Adversarial ML Threat Matrix, the initiative is an attempt to...
New Framework Released to Protect Machine Learning Systems From Adversarial Attacks
Microsoft, in collaboration with MITRE, IBM, NVIDIA, and Bosch, has released a new open framework that aims to help security analysts detect, respond to, and remediate adversarial attacks against machine learning ML systems. Called the Adversarial ML Threat Matrix, the initiative is an attempt to...
Cyberattacks against machine learning systems are more common than you think
Machine learning ML is making incredible transformations in critical areas such as finance, healthcare, and defense, impacting nearly every aspect of our lives. Many businesses, eager to capitalize on advancements in ML, have not scrutinized the security of their ML systems. Today, along with...
Cyberattacks against machine learning systems are more common than you think
Machine learning ML is making incredible transformations in critical areas such as finance, healthcare, and defense, impacting nearly every aspect of our lives. Many businesses, eager to capitalize on advancements in ML, have not scrutinized the security of their ML systems. Today, along with...
Geo-Recon - An OSINT CLI Tool Desgined To Fast Track IP Reputation And Geo-locaton Look Up For Security Analysts
An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts. Setup This tool is compactible with: Any Linux Operating System Debian, Ubuntu, CentOS Termux Linux Setup git clone https://github.com/radioactivetobi/geo-recon.git cd geo-recon chmod +x...
(Live) Webinar – XDR and Beyond with Autonomous Breach Protection
Anyone paying attention to the cybersecurity technology market has heard the term XDR - Extended Detection and Response. XDR is a new technology approach that combines multiple protection technologies into a single platform. All the analyst firms are writing about it, and many of the top...
Akamai, CISA, and CIS Join Forces to Improve SLTT Cyber Defenses
Cybercriminals continue to target U.S. state, local, tribal, and territorial SLTT government organizations. In 2019, there were more than 100 ransomware attacks -- including an attack on Baltimore's IT systems that locked out thousands of computers and disrupted nearly every city service. This...
Security Bulletin: IBM i2 Analysts' Notebook and IBM i2 Analysts' Notebook Premium Memory vulnerabilities
Summary Multiple memory corruption vulnerabilities have been found in the IBM i2 Analysts' Notebook, and IBM i2 Analysts' Notebook Premium. Please see linked CVE's for details. Vulnerability Details CVEID: CVE-2020-4549 DESCRIPTION: IBM i2 Analyst's Notebook could allow a local attacker to execut...
Obscured by Clouds: Insights into Office 365 Attacks and How Mandiant Managed Defense Investigates
With Business Email Compromises BECs showing no signs of slowing down, it is becoming increasingly important for security analysts to understand Office 365 O365 breaches and how to properly investigate them. This blog post is for those who have yet to dip their toes into the waters of an O365 BEC...
Inside Microsoft Threat Protection: Solving cross-domain security incidents through the power of correlation analytics
In theory, a cyberattack can be disrupted at every phase of the attack chain. In reality, however, defense stack boundaries should overlap in order to be effective. When a threat comes via email, for example, even with good security solutions in place, organizations must assume that the threat ma...
Carbon Black EDR’s All-New Live Query Capability and Enhanced Fileless Visibility
VMware Carbon Black is excited to announce that VMware Carbon Black EDR formerly CB Response, recently named by Gartner as a 2020 Customers’ Choice for Endpoint Detection and Response solutions, now features enhanced insight into fileless activity via Microsoft’s AMSI and a brand new Live Query...